CISS 320 Chapter 9

What is considered the 'cleanup rule' on a Cisco router?

What service uses UDP port 53?

What should a company concerned about protecting its data warehouses and employee privacy might consider installing on the network perimeter to prevent direct connections between the internal network and the Internet?

What type of attack are stateless packet filters particularly vulnerable to?

What type of ICMP packet can an attacker use to send traffic to a computer they control outside the protected network?

Which element of a rule base conceals internal names and IP addresses from users outside the network?

Which of the following is a general practice for a rule base?

Which of the following is a method for supporting IPv6 on IPv4 networks until IPv6 is universally adopted?

Which of the following is an advantage of hardware firewalls?

Which of the following is a typical drawback of a free firewall program?

Which of the following is described as the combination of an IP address and a port number?

Which of the following is NOT a criteria typically used by stateless packet filters to determine whether or not to block packets.

Which of the following is NOT among the common guidelines that should be reflected in the rule base to implement an organization's security policy?

Which of the following is NOT an ICMPv6 packet type that you should allow within your organization but never outside the organization?

Which of the following is NOT a protocol,port pair that should be filtered when an attempt is made to make a connection from outside the company network?